Formal verification of side-channel countermeasures using self-composition
Formal verification of side-channel countermeasures using self-composition
| dc.contributor.author | José Bacelar Almeida | en |
| dc.contributor.author | Manuel Barbosa | en |
| dc.contributor.author | Jorge Sousa Pinto | en |
| dc.contributor.author | Vieira,B | en |
| dc.date.accessioned | 2017-12-22T10:02:25Z | |
| dc.date.available | 2017-12-22T10:02:25Z | |
| dc.date.issued | 2013 | en |
| dc.description.abstract | Formal verification of cryptographic software implementations poses significant challenges for off-the-shelf tools. This is due to the domain-specific characteristics of the code, involving aggressive optimizations and non-functional security requirements, namely the critical aspect of countermeasures against side-channel attacks. In this paper, we extend previous results supporting the practicality of self-composition proofs of non-interference and generalizations thereof. We tackle the formal verification of high-level security policies adopted in the implementation of the recently proposed NaCl cryptographic library. We formalize these policies and propose a formal verification approach based on self-composition, extending the range of security policies that could previously be handled using this technique. We demonstrate our results by addressing compliance with the NaCl security policies in real-world cryptographic code, highlighting the potential for automation of our techniques. | en |
| dc.identifier.uri | http://repositorio.inesctec.pt/handle/123456789/4737 | |
| dc.identifier.uri | http://dx.doi.org/10.1016/j.scico.2011.10.008 | en |
| dc.language | eng | en |
| dc.relation | 5595 | en |
| dc.relation | 5598 | en |
| dc.relation | 5604 | en |
| dc.rights | info:eu-repo/semantics/openAccess | en |
| dc.title | Formal verification of side-channel countermeasures using self-composition | en |
| dc.type | article | en |
| dc.type | Publication | en |
Files
Original bundle
1 - 1 of 1